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SYSTEM AND METHOD FOR USING USER-SPECIFIC 
INFORMATION TO CONFIGURE AND ENABLE FUNCTIONS IN 
REMOTE CONTROL, BROADCAST AND INTERACTIVE 
10 SYSTEMS 



BACKGROUND OF THE INVENTION 
The present invention relates generally to remote control, broadcast, and 

1 5 interactive systems, and in particular to techniques for using user-specific information to 
configure and enable functions in a consumer updatable smart card for use with 
interactive television systems, and techniques for interactively loading data onto such a 
smart card using a remote control. 

At a time when many in our society are enjoying increasing productivity in 

20 their work environment, in large part the benefit of the investment in new technology, 
somewhat paradoxically, leisure time has become a premium commodity. Sadly, free 
time to enjoy entertainment, or to shop for goods for ones self or others has become a 
scarce luxury. It seems that every day, demands on the individual and the family arise, 
barring the enjoyment of quality time together. Accordingly, Americans seek more easily 

25 enjoyed forms of entertainment than ever before in history. 

One type of entertainment device that has experienced wide acceptance is 
the television. Television has become one of the most widespread mediums for 
broadcasting content to a viewer. Ahnost every house in the United States and in most 
other developed countries has access to a television. Families congregate around the 

30 television to enjoy movies, sitcoms, instructional programming, comedy shows, and 
more. Conventional television may receive its signals from a content broadcast source 
via cable, satellite, antenna, or other device. The channels are "tuned" either by the 
television itself or by a set top box. Content is provided by a plurality of content 
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broadcast sources, in return for advertising revenue. One of the v^ays a content broadcast 
source derives revenue is through the sale of time slots for commercial advertising. A 
company promoter pays for a time slot during a particular broadcast, such as a movie or a 
sitcom, to promote a company product. The company promoter relies on the power of the 
5 advertisement to motivate each viewer either to travel to a store to purchase the product 
or to order the product via telephone or Internet connection. 

One recent advance to television technology is the onset of interactive 
television and web-enabled television. These technologies enable a viewer to select 
content, to view content, to request information pertaining to content, to identify preferred 

10 advertising, to access web content, to access video game downloads, and more. 
Interactive television provides a more attractive entertainment medium than the 
traditional television. 

While certain advantages to conventional approaches are perceived, 
opportunities for further improvement exist. For example, according to conventional 

1 5 television technology, a variety of people from different purchasing demographics may be 
watching the same television program, and thus view the same advertising. Accordingly, 
many of the viewers may be disinterested in the advertised product, which leads to 
inefficient use of the viewer's entertainment time, as well as the advertiser's advertising 
expenditures. Further, a potential customer's motivation to purchase an advertised good 

20 or service may not last long enough after viewing an advertisement to effect the 

transaction. Again, this leads to inefficient use of time and money. Another disadvantage 
to conventional television systems is that there is typically no mechanism to enforce 
restrictions on viewing of adult programming content by minors. In typical conventional 
systems, there is not the possibility to block access to certain types of programming by 

25 someone other than a continuously present adult. 

What are needed are improved techniques for techniques for using user- 
specific information to configure and enable functions in consumer updatable smart cards 
for use with interactive television systems, and techniques for interactively loading data 
onto such a smart card using a remote control in interactive television based 

30 entertainment and commerce systems. 
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BRIEF DESCRIPTION OF THE DRAWINGS 
Non-limiting and non-exhaustive embodiments of the present invention are 
described with reference to the following figures, wherein like reference numerals refer to 
like parts throughout unless otherwise specified. 
5 Fig. 1 illustrates a block diagram of a representative example interactive 

broadcast network in a specific embodiment of the present invention. 

Fig. 2A illustrates a block diagram of a representative example interactive 
television system client in a specific embodiment of the present invention. 

Fig. 2B illustrates a block diagram of a representative example interactive 
10 client system client in another specific embodiment of the present invention. 

Fig. 3 illustrates a block diagram of a representative example remote 
control in a specific embodiment of the present invention. 

Fig. 4 illustrates a block diagram of a representative example set top box in 
a specific embodiment of the present invention. 
15 Fig. 5 illustrates a block diagram of a representative example smart card in 

a specific embodiment of the present invention. 

Fig. 6 illustrates a block diagram of a representative example of user- 
specific information in a specific embodiment of the present invention. 

Fig. 7 illustrates a flowchart of a representative example process of using a 
20 smart card in a specific embodiment of the present invention. 

Fig. 8A illustrates a flowchart of a representative example process of 
controlling a viewer's access to information using a smart card in a specific embodiment 
of the present invention. 

Fig. 8B illustrates a flowchart of a representative example process of 
25 shopping using a smart card in a specific embodiment of the present invention. 

Fig. 8C illustrates a flowchart of a representative example process of 
effecting a sale transaction automatically in a specific embodiment of the present 
invention. 

Fig, 9 illustrates a flowchart of a representative example process of 
30 authenticating user identity in a specific embodiment of the present invention. 

Fig. lOA illustrates a flowchart of a representative example user-specific 
information management process in a specific embodiment of the present invention. 
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Fig. lOB illustrates a flowchart of another representative example user- 
specific information management process in a specific embodiment of the present 
invention. 
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DESCRIPTION OF THE SPECIFIC EMBODIMENTS 
The present invention provides techniques for using user-specific 
information to configure and enable functions in remote control broadcast and interactive 
systems. Embodiments according to the present invention provide various techniques for 

10 using user-specific information to configure and enable functions in consumer updatable 
smart cards for use v^ith interactive television systems, and techniques for interactively 
loading data onto such a smart card using a remote control in interactive television based 
entertainment and commerce systems. 

In specific embodiments, the user-specific information can be used to 

15 facilitate purchasing items electronically, for example. In other embodiments, the user- 
specific information can be used to complete a call for assistance in case of an 
emergency, select favorite material for viewing, or control access to content, such as aduh 
entertainment. For example, in select specific embodiments, the user-specific 
information can be used for restricting access to sexually explicit material over electronic 

20 delivery media. In specific embodiments, the present invention provides user interactive, 
set top box controlled modifiability to user-specific information stored on a smart card. 
In various specific embodiments, the user-specific information can also include 
information about persons other than the user, to which the user has a particular 
relationship. For example, information such as a mother's favorite fiower, or a child's 

25 clothing size, and the like may be stored for a particular user. One or more specific 
embodiments can provide enhanced convenience, communicative efficiency and data 
security over conventional approaches. 

In a representative embodiment, the present invention provides a method. 
The method includes receiving a first plurality of user-specific information. The method 

30 also provides for storing the first plurality of user-specific information. The first plurality 
of user-specific information can be stored on a smart card, for example. Receiving a first 
indication of user intention to enter into a first transaction is part of the method, as well. 
Further, the method includes evaluating the first indication of user intention to enter into a 
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first transaction in order to select a first plurality of specific instances of information from 
the first plurality of user-specific information based upon relevance to the first 
transaction. The method also includes creating a first transaction request based upon the 
first indication of user intention to enter into a transaction and the first specific instances 
5 of user-specific information. Then^ according to the method, the first transaction request 
is sent. In specific embodiments, the present invention provides a remote access device 
that is configured to accept a smart card. The smart card has user modifiable information 
relevant to completing transactions for goods or services, for example, stored thereon. In 
various specific embodiments, a second plurality of user-specific information may be 

10 received and stored on a smart card, providing user interactive, set top box controlled 
modifiability to the information on the smart card. 

In another representative embodiment, the present invention provides an 
apparatus. The apparatus comprises: a processor; a v^orking memory; a persistent 
storage; a head end communications device; a transceiver; and a bus. The bus 

15 interconnects the processor, the working memory, the persistent storage, the head end 
communications device and the transceiver. The transceiver is operative to provide 
communications with a remotable device. Further, a smart card having user modifiable 
information relevant to completing transactions stored thereon is operatively coupled to 
the remotable device. Alternatively, or in addition, the smart card may be coupled to the 

20 apparatus in various specific embodiments. 

As used herein, the term transaction is intended to be broadly construed to 
cover a wide variety of requests for services, including, but not limited to, one or more of: 
accessing a web site; accessing a source of programming; making a purchase of goods or 
services; making a sale of goods or services; placing goods or services up for auction; 

25 borrowing money; lending money; uploading information from a smart card to a head 
end; downloading information from a head end to a smart card; uploading information 
from a smart card to a set top box; downloading information from a set top box to a smart 
card; and making a request for help. Other types of transactions will be readily apparent 
to those skilled in the art. 

30 Fig. 1 illustrates a block diagram of a representative example interactive 

broadcast network in a specific embodiment of the present invention. As Fig. 1 shows, an 
example embodiment includes a network 100 having an Internet site 1 10, or other 
network-based content broadcast source, and a television network center 105, such as 
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NBC, CBS, CNN, or other content broadcast source, each of which can be coupled to one 
or more head ends, such as head end 1 1 5a and head end 1 1 5b, collectively and/or 
individually referred to herein as head end 115. Each of the Internet site 1 10 or the 
network center 105 may be referred to as a "content broadcast source 107." Each head 
5 end 115 may be coupled to one or more set top boxes (STB), including set top boxes 
120a-120f, collectively and/or individually referred to herein as set top box 120. One 
skilled in the art will recognize that the network 100 may include different clients, such as 
web-enabled or interactive television sets, televisions, computers, or other electronic 
devices, for example, connected to the set top boxes 120. One skilled in the art will also 

10 recognize that the set top boxes 120 may be connected to the Internet site 1 10 or to the 
network center 105 using a variety of connection techniques. For example, in a specific 
embodiment, the clients may be connected to the content broadcast source 107 directly, 
omitting head end 115. The connection between the set top box 120 and the head end 1 1 5 
may use telephone lines, cable, satellite, wireless, or other communication mechanisms in 

15 various specific embodiments. For simplicity and convenience, representative 

embodiments of the present invention will be described generally with reference to Fig. 1 . 
However, various specific embodiments of the present invention may be realized using 
any of a wide variety of network configurations. 

One or more of the content broadcast sources 107 provide content to the 

20 set top boxes 120. In the case of the Internet site 110, the content may be in the form of 
web pages, and the like, for example. In the case of the network center 105, the content 
may be in the form of movies or sitcoms. It will be appreciated that, in either case, the 
content broadcast source 107 may transmit interactive content, such as, for example, a 
product offering, instructional video or a video request form, and the like. It will be 

25 appreciated that the interactive content may request user-specific information, such as 
user-identification information, contact information, financial information, size 
information, and the like, for example. It will be appreciated that the request for user- 
specific information need not originate at a content broadcast source 107, For example, 
the head end 1 15 or the set top box 120 may originate an information request. 

30 One or more of the head ends 115 communicates information between the 

content broadcast source 107 and the set top boxes 120. One or more of the set top boxes 
120 receives content from a corresponding head end 1 15, as well as transmits information 
to the corresponding head end 115. In a specific embodiment, the set top boxes 120 can 
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enable a viewer/user to interact via the head end 115 with the Internet 1 10 in order to 
browse network sites, and so forth, with the network center 105 in order to provide 
functions and features such as a capability to select movies, to designate preferred 
advertisements, or to purchase products being offered. 
5 Fig. 2A illustrates a block diagram of a representative example interactive 

television system client in a specific embodiment of the present invention. The 
representative client side 200 of a specific embodiment of an interactive television system 
illustrated by Fig. 2 A can be located within someone's home, office, place of business, or 
the like, for example. Example client side 200 includes a set top box 120, which is 

10 communicatively coupled to a client 125, comprising a television 205 and a remote 

control 215. In a specific embodiment, set top box 120 is communicatively coupled by, 
for example, a wireless connection 210 to remote control 215. Further, a wired 
connection 208 couples set top box 120 to television 205 of client 125. In specific 
embodiments, the remote control 215 includes a smart card reader 220 and/or a smart 

1 5 card writer 3 1 5 adaptable to receive a smart card 501. The smart card reader 220 may be 
used to convey user-specific information stored on the smart card 501 to the set top box 
120, and the smart card writer 315 may be used to modify user-specific information 
stored on the smart card 501 under control of the set top box 120, and/or the remote 
control 215. 

20 Fig. 2B illustrates a block diagram of another representative example 

interactive television system client in a specific embodiment of the present invention. As 
shown in Fig, 2B, the example client side 200 includes a set top box 120, which is 
communicatively coupled to a client 125, comprising a television 205 and a remote 
control 215. In a specific embodiment, set top box 120 is communicatively coupled by, 

25 for example, a wireless connection 210 to remote control 215. Further, a wired 

connection 208 couples set top box 120 to television 205 of client 125. A smart card 
reader 220 and/or smart card writer 315 can be located within or coupled to the set top 
box 120 to provide interface to smart card 501. 

It will be appreciated that, in specific embodiments in which the client side 

30 200 includes a smart card reader 220 and/or smart card writer 3 1 5 for reading and writing 
user-specific information to smart cards, new functionality may be achieved. For 
example, the client side 200 can provide personalization of the remote control 215, 
personalization of the set top box 120, and so forth. Personalization capability can 
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provide enhanced automatic purchasing of advertised products, selection of favorite 
channels, restricting viev^er access to particular channels, and other functionality in 
various specific embodiments. 

In an alternative embodiment, the smart card reader 220 and/or smart card 
5 writer 3 1 5 may be located within television 205, for example. Many other possible 
locations for the smart card reader 220 and/or the smart card writer 315, such as in a 
separate device or devices, are available in various specific embodiments. However, for 
convenience, specific embodiments will be described generally with reference to the 
configurations illustrated by Figs 2A-2B. 

10 Fig. 3 illustrates a block diagram of a representative remote control in a 

specific embodiment of the present invention. In the specific embodiments illustrated by 
Fig. 3, the remote control 215 includes a transceiver 300, a user interface 305, a smart 
card reader 220, a smart card v^iter 3 15, an encryption engine 320, a security engine 325, 
a controller 330, and storage 340. In various specific embodiments, remote control 215 

15 may include other components not shown. Further, in some specific embodiments, one or 
more of the components illustrated by Fig. 3 may be omitted. 

The transceiver 300 establishes data communication between the remote 
control 215 and the set top box 120. The transceiver 300 may, for example, transmit 
information, such as, for example, commands, data, executables, and the like, to the set 

20 top box 120 as well as receive information, such as, for example, commands, data, 
executables, and the like, from the set top box 120. The communication between the 
remote control 215 and the set top box may be wireless, or a wire connection in various 
specific embodiments. Further, any of a variety of data protocols and connection 
methods may be used. For example, in specific embodiments using wireless 

25 communications, the medium may be Infrared (IR), radio frequency, or the like. In 
specific embodiments that employ a wire connection, a serial, parallel, or other 
connection may be used. 

The user interface 305 enables a user to interface with the remote control 
215. The user interface 305 permits the user to enter numbers and text into the remote 

30 control 215. The user interface 305 may include, for example, conventional 

alphanumeric buttons, a keyboard, touch pad, touch screen, mouse, track ball, specialized 
keys, such as a key for requesting a sales transaction, or a dedicated "91 1" button, or a 
voice recognition tool. 
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The controller 330 controls information requests received &om the user 
interface 305 or from the set top box 120. For efficient configuration of the set top box 
120, the controller 330 may be configured to automatically transmit to the set top box 120 
certain user-specific information from an installed smart card 501. For example, if the 
5 smart card 501 stores a user's favorite channels, the controller 330 may automatically 
request that the stored favorite channels from the smart card 501 be transmitted to the set 
top box 120. In other specific embodiments, information such as banking information, 
content viewing restrictions, or the like can be stored on the smart card 501 for retrieval 
to be loaded into the set top box 120. Thus, the set top box 120 can enable these channels 

10 or functions. Alternatively, the controller 330 may wait for user or set top box 120 

instructions. In another example, the user may request to purchase an advertised product 
either by making an appropriate input into user interface 305, or otherwise. In response, 
the controller 330 may request that the necessary information be extracted from the smart 
card 501 and be transmitted. It will be appreciated that, like many components described 

15 herein, the controller 330 may be implemented in hardware and/or software in various 
specific embodiments. 

The smart card reader 220 interfaces with the smart card 501 . For 
example, when the set top box 120 receives an information request from a content 
broadcast source 107, the set top box 120 forwards the request via the transceiver 300 to 

20 the controller 330 of the remote control 215. Assuming authorization has already been 
established, the controller 330 instructs the smart card reader 220 to retrieve the requested 
information, either automatically or upon user confirmation, from the smart card 501. 
The controller 330 then instructs the transceiver 300 to transmit the retrieved information 
to the set top box 120, which in turn transmits the information to the content broadcast 

25 source 107. In another embodiment, the set top box 120 may originate a request, such as, 
for example, a request to enable favorite channels or a request to enable only specific 
authorized channels in order to limit children's access, for example. This request can be 
originated based upon information from the smart card 501, such as the age of the owner 
of the smart card, for example, or a set of viewing restrictions, or the like. In yet another 

30 embodiment, the user, via the user interface 305, may originate the request, such as, for 
example, a request to enable favorite channels or to purchase a product being advertised. 

The smart card writer 315 also interfaces with the smart card 501 . The 
smart card writer 315 may be used to modify data stored on the smart card 501 . In one 
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embodiment, the set top box 120 may convey user-specific information to the remote 
control 2 1 5 with instructions to modify the information stored on the smart card 501, such 
as, for example, in the case of financial information controlled by a bank. Alternatively, 
the remote control 215 may receive information via the user interface 305, such as, for 
5 example, in the case of parental control of accessible television channels or websites. 
Accordingly, the smart card writer 315 may write the information to the smart card 501. 

It will be appreciated that the smart card reader 220 and/or the smart card 
writer 315, and the controller 330 may cooperate with the security engine 325 to ensure 
that only an authorized party is accessing or using the smart card 501. For example, after 

10 insertion of the smart card 501, the controller 330 may launch the security engine 325 to 
request user identification and password. Until a recognized and authorized user 
identification and password combination is received, the security engine 325 may deny 
access to the smart card 501 . It will be appreciated that the smart card writer 3 1 5 may 
communicate with the security engine 325 to confirm modification rights and/or the 

15 encryption engine 320 for storing or retrieving encrypted data on the smart card 501 . 

It will be appreciated that the transceiver 300 may cooperate with the 
encryption engine 320. The encryption engine 320 may be used to decrypt information 
received from the set top box 120 and encrypt information transmitted to the set top box 
120. It will be appreciated that the encryption engine 320 may use any of a number of 

20 encryption techniques such as public key cryptography, symmetric key cryptography, 
SSL, and the like. 

One skilled in the art will recognize that the remote control 215, the smart 
card reader 220, and/or the smart card writer 3 1 5 may be organized in a variety of ways in 
various alternative embodiments. For example, in a specific embodiment, the remote 

25 control 215 may be a one-way remote control that includes only a smart card reader 220, 
but no smart card writer 315. In such embodiments, the remote control 215 transmits 
information retrieved from the smart card 501. However, in other specific embodiments, 
the remote control 215 includes fiiU duplex capability that enables the remote control 215 
to transmit as well as receive information to and fi*om the set top box 120. 

30 In a specific embodiment, the user interface 305 may include a dedicated 

"911" button. For example, depression of the button may indicate a request for 
emergency dispatch of an ambulance to a person's home. Alternatively, depression of the 
button may request information to be sent to a person's doctor or parent. Programmable 
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or configurable embodiments can provide the user with the option of selecting from 
among such actions to be triggered by the "911" button. The user interface 305 may 
transmit the request to the controller 330, which instructs the smart card reader 220 to 
retrieve stored user identification, health information, address information and/or other 
5 information. Alternatively or additionally, the remote control 215 or set top box 120 
itself may store address information. Stored address information can be useful to provide 
the capability to use a smart card 501 with a friend's remote control 215 in instances 
where the smart card user may be visiting at a friend's house, for example. The controller 
330 can automatically send an emergency message including the user health and address 

1 0 (either or both) information to the emergency dispatch service or other person. One 
skilled in the art will recognize that any emergency dispatch input device can be 
additionally or alternatively used. For example, in specific embodiments, the user 
interface 305 may include speech recognition, remote receivers, and the like. In one 
embodiment, the transmitter device (not shown) may be included, for example, in a 

15 pacemaker type device (not shown), which sends an emergency dispatch request to the 
remote receiver when the pacemaker device recognizes certain heart events. 

Fig. 4 illustrates a block diagram of a representative example set top box in 
a specific embodiment of the present invention. As shown in Fig. 4, representative set top 
box 120a includes a processor 405, which can be an Intel Pentium® microprocessor or a 

20 Motorola Power PC® microprocessor, or the like, for example, coupled to a 

communications channel 440. The set top box 120a further includes a working memory 
410, which can be RAM, for example, a persistent storage 415, such as a hard drive, a 
head-end communications device (transceiver) 420, a transceiver 425, an encryption 
engine 430, a controller 435, and a user interface 445, each coupled to the 

25 communications channel 440. It will be appreciated that the terms "memory" and 
"storage" herein are intended to cover any data storage media, whether persistent or 
temporary, fixed or removable, tape, disk, or semiconductor. 

The head end communications device 420 enables communications 
between the set top box 120a and the head end 1 15a, for example. In a representative 

30 specific embodiment, the head end communications device 420 may include a parser, an 
MPEG standard transport stream, an MPEG decoder chip, and chips for audio decoding 
and processing, for example. 
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The transceiver 425 communicates information to and from the transceiver 
300 of the remote control 215. In representative example embodiments, this information 
may include one or more of commands, data, executables, and so forth. 

The user interface 445 receives information into the set top box 120a 
5 directly from the user. For example, to avoid transmitting restricted information, such as 
passwords or personal identification numbers (PINs), the information may be entered 
directly into the set top box 120a via the user interface 445, rather than into the remote 
control 215 via the user interface 305. In various embodiments, the user interface 445 
may include for example a keyboard, a voice identification system, mouse, touch pad, 

10 touch screen, track ball, joystick, or the like. 

The controller 435 may be hardware and/or software. Controller 435 
processes information being communicated to and/or from the set top box 120a, whether 
with the head end communications device 420, with the transceiver 425 or with the user 
interface 445. For example, when a user requests to purchase an advertised product, the 

15 controller 435 instructs the head end communications device 420 to transmit the request 
to the content broadcast source 107. In various specific embodiments, other information 
may also be included in the request, such as user identification information, financial 
information and delivery address information, or the like, for example. When the 
controller 435 receives the purchase request from the content broadcast source 107, the 

20 controller 435 instructs the television 205 to display a receipt including, for example, a 
confirmation number. 

It should be noted that, in specific embodiments, an Internet site 110 may 
send code for installation in the set top box 120a, in the remote control 215 or in the smart 
card 501. In some embodiments, instructions to install the code and/or an installer may 

25 be sent as well. The controller 435 in the set top box 120a controls whether the received 
code is installed in the set top box 120a, or forwarded to the controller 330 of the remote 
control 215. If the code is intended for the remote control 215, the controller 330 of the 
remote control 215 stores and installs the code on the remote control 215. Alternatively, 
the controller 330 instructs the smart card writer 315 to write and install the code on the 

30 smart card 501. This enables specific embodiments to perform code updates and add 
functionality to the remote control 215 and smart card 501. 

In specific embodiments, the controller 435 may operate in conjunction 
with the encryption engine 430, The encryption engine 430 encrypts messages being sent 
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either to the content broadcast source 107 or to the remote control 215, as appropriate. 
Also, the encryption engine 430 decrypts messages being received either from the remote 
control 215 or from the content broadcast source 107, as appropriate. 

Fig. 5 illustrates a block diagram of a representative example smart card in 
5 a specific embodiment of the present invention. As shown in Fig. 5, smart card 501 
includes a smart card reader/v^riter interface 500, a processor 505, a working memory 
510, a persistent storage 515, and user-specific information 520. The smart card 
reader/writer interface 500 interfaces with the smart card reader 220 and/or smart card 
writer 315 once docked. The user-specific information 520 includes user-configurable 

10 information 521, which may be all or at least a portion of the user-specific information 
520. Examples of user-specific information in various specific embodiments will be 
described with reference to Fig. 6. 

Fig. 6 illustrates a block diagram of a representative example of user- 
specific information in a specific embodiment of the present invention. As shown in Fig. 

15 6, representative examples of user-specific information 520 may include user personal 
information 605, content accessibility rights 610, modification rights 615, smart card use 
rights 620, user preferences 625, financial information 630, encryption information 635, 
stored encrypted PINs 640, and the like. In some specific embodiments, not all of the 
types of user-specific information illustrated by Fig. 6 may be present. Further, in select 

20 specific embodiments, other types of user-specific information can be included, as will be 
apparent to those skilled in the art. 

Personal user information 605 may include user name, user phone 
numbers, contact and delivery address information, health information, clothing sizes, 
age, favorite colors, flavors, and the like. In some specific embodiments, personal user 

25 information 605 can include information about one or more persons other than the user. 
For example, a shopper can obtain a copy of a bridal registry for a friend from the head 
end 1 15a, or other source, for example. Once the bridal registry information is 
downloaded into the shopper's smart card, the shopper can use the bridal registry 
information to shop for gifts for the friend. Content accessibility rights 610 include 

30 information for preventing a user from accessing certain channels. For example, a parent 
or guardian can limit what a minor user can view. The minor user is blocked from 
modifying the content accessibility rights until the minor becomes of age, or is otherwise 
emancipated. Modification rights 615 include permissions to allow users, such as the 
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parents, guardians or banks issuing a cash card, to modify the information on the smart 
card while forbidding others. Smart card use rights 620 indicate who is allowed to use 
the particular card and may include user ID and password combinations. User 
preferences 625 may include favorite channels. User preferences 625 may also include 
5 information regarding user's preferred shopping sites or his other shopping preferences 
such as color or brand of a particular product. Financial information 630 may include a 
user's credit card information or user spending limits. Encryption information 635 may 
include the user's public and private keys, encryption algorithms, or user certificates. 

In specific embodiments, a stored encrypted PIN 640 may be used to 

10 determine user authorization to access the smart card 501 . For example, the user may 
enter a password into the set top box 120. The encryption engine 430 of the set top box 
120 may encrypt the password using, for example, the user's public key. The stored 
encrypted PIN 640 may be transmitted using a wireless connection 210, for example, 
from the smart card 501 via the remote control 215 to the set top box 120, and compared 

1 5 against the encrypted entered password. If they match, authorization may be granted. 

This system enables user authentication without wireless transmission of the unencrypted 
password that otherwise could be intercepted. 

In specific embodiments, the smart card writer 315 provides the user and 
the institutions associated with the user with the capability to interact with the smart card 

20 501 and update the user-specific information 520 stored on the smart card 501. User 

personal information 605, such as user's clothing sizes and address or user's preferences 
625, may change with time. The inclusion of the smart card writer 3 15 in specific 
embodiments permits the user to modify these pieces of information on the smart card 
501 as they change with time. Other types of data stored on the smart card 501 may need 

25 to be modified by other parties to reflect a change in the user's situation. For example, a 
bank may wish to modify the quantity of fiinds or credit or other financial information 
630 related to the user that is reflected by the smart card 501 . All or some of the various 
categories of information stored on the smart card 501 may be interactively modified and 
updated by the user or other entities authorized to do so. 

30 It will be appreciated, however, that before allowing smart card data 

modification, the smart card writer 315 and/or the smart card itself may be configured to 
permit only certain users to modify the data, or certain users to modify only certain data 
types, and the like. For example, the smart card 501 may contain permissions to allow 
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only particular individuals, such as parents or guardians, for example, to update a child's 
shopping allowance or the accessible television channels. Such modifications would be 
inaccessible to anyone else, including the child or siblings. As another example, the 
smart card 501 may contain permissions to allow only a particular financial institution to 
5 modify the spending limit available. Some categories of information stored on the smart 
card 501, for example the stored encrypted PIN 640 or the encryption information 635 
may be set to block modification. 

Fig. 7 illustrates a flowchart of a representative example process of using a 
smart card in a specific embodiment of the present invention. In Fig. 7, a flowchart 700 

10 depicts a process of installing and using a smart card in a specific embodiment is shown. 
The smart card 501 is inserted 705 into the remote control 215. The security engine 325, 
at the request of the controller 330 or otherwise, requests 710 smart card use rights 
information from the user via the user interface 305. Use rights information can include a 
user ID and password combination, for example, in a representative embodiment. It is 

15 appreciated by one of ordinary skill in the art that the smart card use rights information 
may come in various other forms, for example, thumbprints, voice prints, or retinal scans 
in various specific embodiments. The user interface 305 obtains 715 the entered smart 
card use rights information. The security engine 325 requests stored smart card use rights 
information 620, or an encrypted PIN 640, from the smart card 501 to compare against 

20 the entered smart card use rights information. The security engine 325 determines 720 
whether the entered smart card use rights information matches the stored smart card use 
rights information 620 or encrypted PIN 640. 

If the security engine 325 determines 720 that they do not match, then the 
security engine 325 next determines 721 whether to lock up because a maximum number 

25 of attempts has been reached, for example, thereby suggesting that an unauthorized user 
is trying to access the smart card 501. If not time to lock up, the security engine 325 
returns to requesting 710 use rights information. If time to lock up, the security engine 
325 denies any access for a preset duration of time or until the lock mechanism is 
overridden. 

30 If the security engine 325 determines 720 that the entered smart card use 

rights information matches the stored smart card use rights information 620, or encrypted 
PIN 640, the controller 330 configures 725 the set top box 120 and the remote control 215 
according to the user-specific information 520 on the smart card 501. For example, the 
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controller 330 may automatically request that favorite and authorized channels be 
transmitted to the set top box 120. Alternatively, the controller 330 may send a ready flag 
to the controller 435 of the set top box 120 to indicate a readiness to accept requests, such 
as a request for favorite and authorized channels. Accordingly, the controller 330 of the 
5 remote control 2 1 5 receives 730 a request for a particular task from the user or the set top 
box 120, directly or indirectly, and responds 735 by performing actions based on the user- 
specific information 520 on the smart card 501. It will be appreciated that receiving 730 
and responding 735 represent a variety of possible functions. Representative examples of 
some of a wide variety of functions possible associated with receiving 730 and 
10 responding 735 in various specific embodiments will be described with reference to Figs 
8A-8C. 

In specific embodiments, enhanced mobility can be provided to the smart 
card user. In some specific embodiments, inserting the smart card 501 in a remote control 
215 at a friend's house will configure the friend's remote control 215 and television 205 

1 5 in accordance with the user's user-specific information, rather than according to the 
preprogrammed information of the friend who owns the television 205 and the remote 
control 215. Accordingly, purchases conducted using the friend's system will meet the 
requirements, size, color, etc., of the user and will be delivered to the user's delivery 
address and not the friend's. 

20 In specific embodiments, the information exchanged between the remote 

control 215 and the set top box 120 can be encrypted in case the information is 
intercepted by a third party desiring to compromise the connection between the remote 
control 215 and set top box 120. Encryption can be useful in embodiments in which 
currency value is stored on smart card 501. Symmetric or asymmetric encryption 

25 techniques may be used m various specific embodiments. A web-enabled set top box 120 
may obtain public key and authentication information and encryption protocols from 
certification sites such as Verisign®, so that the set top box can encrypt the information 
when the user is away from his house. The user's private key may be stored on the smart 
card 501. 

30 In the case of user verification, many different techniques can be used. 

One example embodiment includes transmitting the encrypted form of the PIN from the 
smart card 501 to the set top box 120, so that the unencrypted PIN may not be intercepted 
while in transmission. In specific embodiments where the user enters the PIN directly 
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into the set top box 120, the set top box 120 encrypts the entered PIN and compares the 
encrypted entered PIN with the stored encrypted PEST 640. 

Fig. 8 A illustrates a flowchart of a representative example process of 
controlling a viewer's access to information using a smart card in a specific embodiment 

5 of the present invention. As shown in Fig. 8 A, a flowchart 800 of a process for enabling 
access to broadcast content from a content broadcast source 107, for example, can be used 
to limit children from viewing unauthorized content, and the like. The user interface 305 
of the remote control 215 receives 805 a user request for access to content, such as, a 
channel having sexually explicit material. The controller 330 requests the smart card 

10 reader 220 to retrieve 810 the content accessibility rights 610 from the user-specific data 
520 stored on the smart card 501. Based on the retrieved content accessibility rights 610, 
the controller 435 of the set top box 120 or the controller 330 of the remote control 215 
determines 820 whether the user is allowed to access the content requested. 

If the user does not have rights to access the request content, the controller 

15 330 denies 840 access to the content and the user interface 305 awaits another request, 
such as, a channel selection. If the user has rights, the controller 330 instructs the 
transceiver 300 to grant 830 access to the content. 

As an example of a specific embodiment, a child user may request access 
to an improper channel. When the controller 330 receives 805 this request, it retrieves 

20 810 the child user' s content accessibility rights 6 1 0 from the smart card 501. The child 
will be denied 840 access. Further, if the smart card 501 is not the child's smart card, 
then the child may not have received authorization to use the card 501 at all via the smart 
card use rights 620 query. 

Fig. 8B illustrates a flowchart of a representative example process of 

25 shopping using a smart card in a specific embodiment of the present invention. In 

flowchart 850, the set top box 120 receives 851 an advertisement for a product from a 
content broadcast source 107, for example. The set top box 120 instructs the television 
205 or other output device to present the advertisement. The set top box 120 awaits any 
requests for the product. In this example, the user interface 305 on the remote control 215 

30 receives 852 a product purchase request. The controller 330 determines 853 if the user is 
authorized to purchase the product requested. In one embodiment, the controller 330 
instructs the smart card reader 220 to retrieve the content accessibility rights 610 of the 
user-specific data 520 stored on the smart card 501. If the controller 330 determines 853 
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that the user is not permitted, then the controller 330 denies 857 the request and returns to 
receive 851 another advertisement for a product. 

If the controller 330 determines 853 that the user is permitted, then the 
controller 330 next determines 854 if the user has sufficient funds to make the purchase. 
5 In one embodiment, the controller 330 requests the financial information 630 of the user- 
specific information 520 via the smart card reader 220, for example. If the retrieved 
financial information 630 indicates that the user has sufficient funds, the controller 330 
grants authorization, and the transaction is effected 855. The set top box 120 requests the 
appropriate information, such as user identification, bank information, size information, 

1 0 delivery address, and the like, from the smart card 501. 

As an example of a specific embodiment, a group of children gathered at a 
fi-iend's house may desire to purchase baseball gloves. Each child may insert his smart 
card 501 into the remote control 215. The process of a specific embodiment illustrated by 
flowchart 850 ensures purchase authorization, ensures that the boy has funds to purchase 

1 5 the item, ensures that the glove is of the right size, and ensures that the glove is delivered 
to the correct address. 

If the controller 330 determines 854 that the user does not have sufficient 
funds, the controller 330 may request that the set top box 120 offer 856 various 
alternatives to the user. For example, some of the various alternatives that can be offered 

20 to a user in specific embodiments include: (1) deny the user's request to purchase the 

goods; (2) obtain additional funds from the financial institution; and (3) use other sources 
of funds, such as a credit card, for example. Selecting option (1) results in the request 
being denied 857. Selecting option (2) may translate to a request for the set top box 120 
to communicate 858 with the relevant financial institution, such as a bank, to obtain the 

25 necessary authorization for additional funds. Selecting option (3) may translate to a 
request 859 for the set top box 120 to request alternate credit card information. The 
alternate credit card information may be stored on the smart card 501, and included as 
part of the user-specific information 520, for example. Other alternatives can be provided 
in various specific embodiments as will be readily apparent to those skilled in the art. 

30 Effecting a transaction in a specific embodiment will be described with reference to Fig. 
8C. 

Fig. 8C illustrates a flowchart of a representative example process of 
effecting a sale transaction automatically in a specific embodiment of the present 
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invention. In an example embodiment of Fig. 8C, effecting a sale transaction of Fig. 8B 
is illustrated with reference to a flowchart 855. The controller 330, cooperating with the 
transceiver 300, transmits 865 user authorization to purchase the advertised product. The 
controller 330 receives 870 a request for user-specific information 520, which can be 
5 financial information, user identification information, size information, delivery address 
information, or the like, in order to effect the transaction. The controller 330, cooperating 
with the smart card reader 220, the transceiver 300 and optionally the encryption engine 
320, retrieves and transmits 875 the requested information from the smart card 501 to the 
set top box 120. In some specific embodiments, the requested information may be in 

10 encrypted format. The set top box 120 transmits 880 the requested information 520 to the 
other party, which can be an advertiser, the content broadcast source 107, or the like, for 
example. The set top box 120 receives 885 confirmation of the transaction from the other 
party. The set top box 120 either requests that the confirmation information be stored on 
the smart card 501 or displays the confirmation on the television 205, or both. 

15 Fig. 9 illustrates a flowchart of a representative example authentication 

technique in a specific embodiment of the present invention. As shown by flowchart 900, 
the set top box 120 requests 902 entry of a personal identification number (PIN) by 
instructing the television 205, or other display device, to display the request. The set top 
box 120 may initiate this request upon receiving an indication from the remote control 

20 215 that a smart card 501 has been coupled to the remote control 215, or upon detecting 
the coupling of the smart card 501 with either or both of the smart card reader 220 and/or 
smart card writer 315. The user interface 305 in the remote control 215 obtains 905 an 
entered PIN from the user. The encryption engine 320 encrypts 910 the entered PIN to 
generate an encrypted entered PIN. The security engine 320, cooperatively with the 

25 controller 330 and the transceiver 300, transmits the encrypted entered PIN to the set top 
box 120. Alternatively, the PIN may be entered directly into the set top box 120 via its 
user interface 445 and encrypted by its encryption engine 430. 

The set top box 120 retrieves the stored "correct" encrypted PIN, such as, 
from a remote location such as from Internet site 1 10 or fi-om the smart card 501, and 

30 compares 920 the stored "correct" encrypted PIN against the encrypted entered PIN to 
verify the user. If the PINs do not match, then the set top box 120 denies 930 access to 
the smart card 501 . If a match is found, the set top box 120 grants 925 the user access to 
use the smart card 501 for further operations. 
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Fig, lOA illustrates a flowchart of a representative example user-specific 
information management process in a specific embodiment of the present invention. As 
shovv^n by flowchart 1000, a request to modify user-specific information stored on a smart 
card 501 is received 1002. A user can enter the request via remote control 215, for 
5 example, or directly into the set top box 120. The maker of the request is verified 1003 in 
order to determine if the maker has authorization to modify the information. If the maker 
of the request is authorized, then, an interface for entering user-specific information is 
provided 1004. Otherwise, the request is denied 1009. The interface may be presented 
on the television 205, or on a display mechanism incorporated into the remote device 215, 

10 or set top box 120 in various specific embodiments. An input of modifications to user- 
specific information is received 1006. The user-specific information on the smart card 
501 is updated in accordance with the input 1008. Optionally, in some embodiments, a 
local copy of the user-specific information may be stored 1010. This can be controlled by 
the maker of the modification request, the original creator of the information, or 

15 otherwise. The copy may be stored in the set top box 120, the remote device 215, or both. 

Fig. lOB illustrates a flowchart of a representative example user-specific 
information management process in a specific embodiment of the present invention. As 
shown by flowchart 1020, a request for a copy of user-specific information is received 
1012. The copy may be stored in the set top box 120, the remote device 215, or both. 

20 The request is verified to ensure that the maker of the request is authorized to receive a 
copy of the requested user-specific information 1014. If the request is authorized, then a 
copy of the user-specific information is provided to a smart card associated with the 
maker of the request 1016. Otherwise, an error condition is returned to the maker of the 
request 1018. The copy of the user-specific information can be stored in a smart card 

25 associated with the maker of the request. In a specific embodiment, the techniques 

illustrated by Figs. lOA and lOB can be used to obtain user information such as a bridal 
registry or Christmas list, for example, fi-om the maker of the user-specific information in 
order to effect shopping for products within the style, taste or need of the recipient. 

The foregoing description of the preferred embodiments of the present 

30 invention is by way of example only, and other variations and modifications of the above- 
described embodiments and methods are possible in light of the foregoing teaching. For 
example, components of this invention may be implemented using a programmed 
general-purpose digital computer, using application specific integrated circuits, or using a 
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network of interconnected conventional components and circuits. Connections may be 

wired, wireless, modem, etc. 

In the foregoing description, specific details are set forth to provide a 

thorough understanding of embodiments of the invention. One skilled in the relevant art 
5 will recognize that the invention can be practiced without one or more of the specific 

details, or with other methods, components, or materials. In other instances, well-known 

structures, materials, or operations are not shown or described in detail to avoid obscuring 

aspects of the invention. 

Reference throughout this specification to "one embodiment" or "an 
10 embodiment" means that a particular feature, structure, or characteristic described in 

connection with the embodiment is included in at least that embodiment. Thus, the 

appearances of the phrases "in one embodiment" or "in an embodiment" in various places 

throughout this specification are not necessarily all referring to the same embodiment. 

Furthermore, the particular features, structures, or characteristics may be combined in any 
15 suitable manner in one or more embodiments. 

The embodiments described herein are not intended to be exhaustive or 

limiting. The present invention is limited only by the following claims. 



